Sophie

Sophie

distrib > * > 2008.0 > x86_64 > by-pkgid > c369b5bc3c979fe2827f15d64ab7dc64 > files > 1

xine-lib-1.1.8-4.7mdv2008.0.src.rpm

diff -p -up xine-lib-1.1.11.1/src/libxineadec/xine_speex_decoder.c.CVE-2008-1686 xine-lib-1.1.11.1/src/libxineadec/xine_speex_decoder.c
--- xine-lib-1.1.11.1/src/libxineadec/xine_speex_decoder.c.CVE-2008-1686	2008-05-26 10:45:40.000000000 +0200
+++ xine-lib-1.1.11.1/src/libxineadec/xine_speex_decoder.c	2008-05-26 10:45:57.000000000 +0200
@@ -204,7 +204,7 @@ static void speex_decode_data (audio_dec
       if (!this->st) {
 	SpeexMode * spx_mode;
 	SpeexHeader * spx_header;
-	int modeID;
+	unsigned int modeID;
 	int bitrate;
 
 	speex_bits_init (&this->bits);
@@ -216,7 +216,12 @@ static void speex_decode_data (audio_dec
 	  return;
 	}
 
-	modeID = spx_header->mode;
+	modeID = (unsigned int)spx_header->mode;
+	if (modeID >= SPEEX_NB_MODES) {
+	  xprintf(this->stream->xine, XINE_VERBOSITY_DEBUG, LOG_MODULE ": invalid mode ID %u\n", modeID);
+	  return;
+	}
+	
 	spx_mode = (SpeexMode *) speex_mode_list[modeID];
 
 	if (spx_mode->bitstream_version != spx_header->mode_bitstream_version) {

Perl :: Catalyst :: PostgreSQL :: RPM Valid HTML 4.01 Transitional